3 min read
Cyber Attack Seasons: Key Times When Businesses Are at Risk
While cyber attacks remain a persistent, year-round threat to organizations, cybersecurity professionals have discovered patterns in the frequency...
offensivesecurity
3 min read
Safeguarding Innovation in the Digital Age
In today's fast-paced tech landscape, startups are the driving force behind innovation. However, with rapid growth and development comes increased...
3 min read
Enhancing Cloud Application Security: OWASP 2024 Guide for Developers
The Open Worldwide Application Security Project (OWASP) is an essential resource for developers, particularly those working with cloud-based systems....
7 min read
Access Control Facades and Hardcoded Secrets: A Sage 300 Case Study (Part 3)
This is a continuation of the Sage 300 case study series where we explore the process of discovering and developing exploits for six (6) different...
28 min read
Access Control Facades and Hardcoded Secrets: A Sage 300 Case Study (Part 2)
This is a continuation of the Sage 300 case study series where we explore the process of discovering and developing exploits for six (6) different...
19 min read
Access Control Facades and Hardcoded Secrets: A Sage 300 Case Study (Part 1)
Software solutions have had to evolve rapidly to keep pace with cybersecurity threats. Today, nearly every significant software solution is loaded...
3 min read
Control Gap Vulnerability Roundup: April 29th to May 5th
This week saw the publication of 294 new CVE IDs. Of those, 99 have not yet been assigned official CVSS scores, however, of the ones that were,...
4 min read
Control Gap Vulnerability Roundup: April 22nd to April 28th
This week saw the publication of 501 new CVE IDs. Of those, 430 have not yet been assigned official CVSS scores, however, of the ones that were,...
3 min read
Critical Vulnerability Disclosure: Sage 300
In 2022 Konrad Haase, a member of the Control Gap Offensive Security team, discovered a series of vulnerabilities in Sage 300, a well-established...